I was just going through man pages of nmap, but I couldn't figure out the difference between different SYN scans: -PS vs -sS.
According to man pages, both do the same thing from what I could understand, except -sS is only by root authority.
-PS vs -sS:
Code:
$ nmap -PS www.example.com Starting Nmap 6.47 ( http://nmap.org ) at 2015-02-22 21:25 IST Nmap scan report for www.example.com (93.184.216.34) Host is up (0.32s latency). Not shown: 993 filtered ports PORT STATE SERVICE 53/tcp closed domain 80/tcp open http 443/tcp open https 554/tcp closed rtsp 1119/tcp closed bnetgame 1755/tcp closed wms 1935/tcp closed rtmp # nmap -sS www.example.com Starting Nmap 6.47 ( http://nmap.org ) at 2015-02-22 21:25 IST Nmap scan report for www.example.com (93.184.216.34) Host is up (0.32s latency). Not shown: 993 filtered ports PORT STATE SERVICE 53/tcp closed domain 80/tcp open http 443/tcp open https 554/tcp closed rtsp 1119/tcp closed bnetgame 1755/tcp closed wms 1935/tcp closed rtmp Nmap done: 1 IP address (1 host up) scanned in 19.33 seconds
So how is -PS different to -sS ?
Thanks